Hi
I have configure a site to site vpn between home and office.
I would like only some devices at home to be accessible from office, however it seem to ignore all firewall rules I set.
Here is an image of my settings in zones:
home_jens is the interface for my vpn, and I want to prevent any traffic from this vpn that I have not explicitly allowed using a firewall rule. Input and Forward are set to reject and I did hit save and apply.
I also have a custom rule like this:
iptables -t nat -A POSTROUTING -o home_jens -j ACCEPT
It is to make sure that traffic is not NATed, since I want both sides to be able to reach eachothers ip ranges. I tried commenting this out and restarted firewall but nothing changes.
So all devices at office can still reach all devices at home.
Looking at traffic rules I only opened up for traffic from WAN. Same with port forwards, opened some ports but only for wan.
Anywhere else I can check? Is it something I forgot? Seem like OpenVPN bypassess all my firewall rules